$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa File: AS197433.roa (raw, json) Hash identifier: zJQlF5cRxAzocDMADVJ0u7bNNbpcHrfKhTM47LBvMSs= Subject key identifier: D0:48:71:5C:99:AB:2D:B8:32:E8:16:53:E5:59:84:81:CC:70:68:C3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7AD57A31ECFF742E3A657DC8E888BDAA28194D68 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa Signing time: Wed 07 Aug 2024 06:49:44 +0000 ROA not before: Wed 07 Aug 2024 06:44:44 +0000 ROA not after: Wed 06 Aug 2025 06:49:44 +0000 asID: 197433 IP address blocks: 2a05:dfc1:8c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d5:7a:31:ec:ff:74:2e:3a:65:7d:c8:e8:88:bd:aa:28:19:4d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 7 06:44:44 2024 GMT Not After : Aug 6 06:49:44 2025 GMT Subject: CN=D048715C99AB2DB832E81653E5598481CC7068C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ed:fa:cc:36:3b:0d:83:d9:87:cc:03:f3:7d: 93:6b:de:78:a4:c9:bb:2c:20:d6:1b:6a:74:7f:94: db:da:d6:f2:d9:d8:41:72:02:50:ad:c3:b3:bd:e3: 6d:bb:d5:36:16:28:c3:2a:09:c3:e4:81:13:c5:fc: 05:49:89:1e:44:73:18:64:da:57:74:fe:44:af:a6: 8e:53:48:64:22:a1:2e:70:82:8b:86:a4:8b:25:00: 73:1b:04:97:3e:a7:70:47:16:d4:6a:c6:5e:7e:2e: aa:d6:6d:3c:32:82:e1:87:9e:8d:46:c9:1b:d2:fe: 46:61:21:f3:f5:ca:a6:b3:b3:e5:6a:d5:d0:df:3d: 52:10:16:12:75:bb:73:e6:b9:1f:f5:7f:50:72:96: b5:12:5e:93:ee:7a:2b:35:fc:2f:80:27:c8:95:cd: 18:11:06:61:24:b6:d3:c6:89:72:59:bf:ce:00:33: 4c:99:38:bd:52:fb:1a:90:6d:5f:82:b4:08:88:e7: a6:9b:68:17:58:25:e0:fe:48:fd:94:7b:29:9b:f1: bf:d6:f4:a3:db:8b:cf:75:78:eb:51:45:92:a0:9e: e7:68:23:bc:51:50:f1:67:a6:d5:6f:00:03:a6:6f: 2b:5e:0b:fb:a8:25:46:96:b7:5f:1b:c1:8e:41:b4: 9d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:48:71:5C:99:AB:2D:B8:32:E8:16:53:E5:59:84:81:CC:70:68:C3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8c00::/40 Signature Algorithm: sha256WithRSAEncryption 9c:f5:61:0c:a4:14:e3:6a:5c:e5:c7:39:40:04:09:6b:81:2c: fd:c8:66:97:59:c5:da:ab:04:7c:c8:ed:ce:6a:62:66:a6:c6: 4a:48:38:04:85:d8:22:b1:1e:41:bf:76:71:af:70:29:1d:67: 7b:a4:b4:15:aa:0e:2a:33:db:95:64:75:6f:f4:f2:c7:2b:00: b2:a5:33:45:06:17:36:6c:3d:a8:58:da:16:3f:cb:dd:5e:bd: 58:87:f6:58:11:b1:45:4f:51:93:d3:1e:fe:17:d9:49:76:e6: 8f:f8:af:47:05:0a:9d:a7:50:05:78:4c:d4:7a:d5:5d:4b:de: f2:85:27:c8:2f:fc:94:8f:69:24:2b:e9:ab:7e:ad:f7:f5:70: 0e:90:5f:aa:a2:c1:00:5e:d2:40:eb:62:11:76:91:fa:ec:59: 0b:84:91:4d:09:77:cd:c1:09:3b:42:80:ae:de:7a:1d:ba:8e: 05:30:20:91:5b:60:8e:8a:b1:94:b0:1d:74:45:78:06:11:2c: 89:a0:f6:9b:62:84:e1:75:26:69:ef:7c:bf:8f:b7:42:59:d4: f8:e7:3e:6d:52:11:8c:b5:83:2b:67:04:5e:61:a8:9f:c0:44: e7:ba:c9:5f:45:5c:54:76:0f:77:f5:a9:6d:b1:91:21:65:9d: b6:2e:9f:c0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUetV6Mez/dC46ZX3I6Ii9qigZTWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MDcwNjQ0NDRaFw0yNTA4MDYwNjQ5NDRaMDMxMTAvBgNV BAMTKEQwNDg3MTVDOTlBQjJEQjgzMkU4MTY1M0U1NTk4NDgxQ0M3MDY4QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi7frMNjsNg9mHzAPzfZNr3nik ybssINYbanR/lNva1vLZ2EFyAlCtw7O942271TYWKMMqCcPkgRPF/AVJiR5Ecxhk 2ld0/kSvpo5TSGQioS5wgouGpIslAHMbBJc+p3BHFtRqxl5+LqrWbTwyguGHno1G yRvS/kZhIfP1yqazs+Vq1dDfPVIQFhJ1u3PmuR/1f1BylrUSXpPueis1/C+AJ8iV zRgRBmEkttPGiXJZv84AM0yZOL1S+xqQbV+CtAiI56abaBdYJeD+SP2Ueymb8b/W 9KPbi891eOtRRZKgnudoI7xRUPFnptVvAAOmbyteC/uoJUaWt18bwY5BtJ01AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0EhxXJmrLbgy6BZT5VmEgcxwaMMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYwwDQYJKoZIhvcNAQELBQADggEBAJz1 YQykFONqXOXHOUAECWuBLP3IZpdZxdqrBHzI7c5qYmamxkpIOASF2CKxHkG/dnGv cCkdZ3uktBWqDioz25VkdW/08scrALKlM0UGFzZsPahY2hY/y91evViH9lgRsUVP UZPTHv4X2Ul25o/4r0cFCp2nUAV4TNR61V1L3vKFJ8gv/JSPaSQr6at+rff1cA6Q X6qiwQBe0kDrYhF2kfrsWQuEkU0Jd83BCTtCgK7eeh26jgUwIJFbYI6KsZSwHXRF eAYRLImg9ptihOF1JmnvfL+Pt0JZ1PjnPm1SEYy1gytnBF5hqJ/AROe6yV9FXFR2 D3f1qW2xkSFlnbYun8A= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org